GDPR Compliance
Last Updated: November 26, 2025
1. Introduction
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that grants individuals greater control over their personal data. At Kioxit, we are committed to protecting your privacy and ensuring GDPR compliance.
2. Your Rights Under GDPR
Under GDPR, you have the following rights:
Right to Access
You have the right to request access to your personal data and receive a copy of the information we hold about you.
Right to Rectification
You can request that we correct any inaccurate or incomplete personal data.
Right to Erasure (Right to be Forgotten)
You can request deletion of your personal data under certain circumstances.
Right to Restrict Processing
You can request that we limit the processing of your personal data in specific situations.
Right to Data Portability
You can request to receive your personal data in a structured, commonly used format and transfer it to another organization.
Right to Object
You can object to the processing of your personal data for direct marketing or other purposes.
Rights Related to Automated Decision Making
You have the right not to be subject to decisions based solely on automated processing.
3. How to Exercise Your Rights
To exercise any of your GDPR rights, you can:
- Email us at gdpr@kioxit.com
- Contact our Data Protection Officer at dpo@kioxit.com
- Use the contact form on our Contact page
- Send written request to our physical address
We will respond to your request within 30 days. If we need more time, we will notify you and explain the reason for the delay.
4. Legal Basis for Processing
We process your personal data based on:
- Consent: You have given clear consent for specific processing activities
- Contract: Processing is necessary to fulfill our contract with you
- Legal Obligation: Processing is required to comply with the law
- Legitimate Interests: Processing is necessary for our legitimate business interests
5. Data Protection Measures
We implement various security measures including:
- Encryption of data in transit and at rest
- Regular security assessments and audits
- Access controls and authentication
- Staff training on data protection
- Incident response procedures
- Regular backups and disaster recovery plans
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary by data type.
7. International Data Transfers
If we transfer your data outside Nigeria or the EU, we ensure appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions.
8. Data Breach Notification
In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.
9. Children's Privacy
Our services are not directed to children under 16. We do not knowingly collect personal data from children without parental consent. For children under 16, we require verifiable parental consent before processing their data.
10. Complaints
If you believe we have not handled your personal data properly, you have the right to lodge a complaint with your local data protection authority or the Nigerian Data Protection Commission.
11. Contact Our Data Protection Officer
For any questions about GDPR compliance or data protection:
- Email: support@kioxit.com
- WhatsApp: +234 817 550 7981
- Address: Kioxit shop opposite osa-imadomwinyi str, ekosodin road Benin city